CVE-2025-26454

Name of the Vulnerable Software and Affected Versions DisclaimersParserImpl.java (affected versions not specified)

Description A flaw exists in the validateUriSchemeAndPermission function within the DisclaimersParserImpl.java component that may allow unauthorized access to data belonging to other users due to a confused deputy condition. Successful exploitation of this issue could result in local privilege escalation without requiring additional execution privileges or user interaction.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.